CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

312 matches found

NVD•added 2018/09/04 12:29 a.m.•14 views

CVE-2018-16430

GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in EXTRACTORzipextractmethod in zipextractor.c...

8.8CVSS8.6AI score0.02646EPSS

Exploits1References5

OSV•added 2018/09/04 12:29 a.m.•10 views

CVE-2018-16430

GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in EXTRACTORzipextractmethod in zipextractor.c...

8.8CVSS8.5AI score

Exploits0References5

UbuntuCve•added 2018/09/04 12:29 a.m.•42 views

CVE-2018-16430

GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in EXTRACTORzipextractmethod in zipextractor.c...

8.8CVSS7.2AI score0.02646EPSS

Exploits1References3

OSV•added 2018/09/04 12:29 a.m.•2 views

UBUNTU-CVE-2018-16430

GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in EXTRACTORzipextractmethod in zipextractor.c...

8.8CVSS7.2AI score0.02646EPSS

Exploits1References4

Prion•added 2018/09/04 12:29 a.m.•12 views

Out-of-bounds

GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in EXTRACTORzipextractmethod in zipextractor.c...

6.8CVSS8.4AI score0.02646EPSS

Exploits1References5Affected Software2

CVE•added 2018/09/04 12:0 a.m.•87 views

CVE-2018-16430

CVE-2018-16430 affects GNU Libextractor up to 1.7, with an out-of-bounds read in EXTRACTOR_zip_extract_method() implemented in zip_extractor.c. The vulnerability arises from handling ZIP File Comment fields, as indicated by multiple advisories and vendor notices (Debian, Mageia, Ubuntu). Impact i...

8.8CVSS8.3AI score0.02646EPSS

Exploits1References5Affected Software1

Cvelist•added 2018/09/04 12:0 a.m.•22 views

CVE-2018-16430

GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in EXTRACTORzipextractmethod in zipextractor.c...

8.5AI score0.02646EPSS

Exploits1References5

CNVD•added 2018/09/04 12:0 a.m.•3 views

GNU Libextractor Out-of-Bounds Read Vulnerability

GNU Libextractor is a library for extracting metadata from files. An out-of-bounds read vulnerability exists in GNU Libextractor. An attacker could exploit this vulnerability to cause a denial of service...

8.8CVSS8.3AI score0.02646EPSS

Exploits1References1

Debian CVE•added 2018/09/04 12:0 a.m.•26 views

CVE-2018-16430

GNU Libextractor through 1.7 has an out-of-bounds read vulnerability in EXTRACTORzipextractmethod in zipextractor.c...

8.8CVSS8.6AI score0.02646EPSS

Exploits1

Tenable Nessus•added 2018/08/28 12:0 a.m.•29 views

Debian DLA-1478-1 : libextractor security update

It was discovered that there were two vulnerabilities in libextractor, a library to obtain metadata from files of arbitrary type. - A stack-based buffer overflow in unzip.c. CVE-2018-14346 - An infinite loop vulnerability in mpegextractor.c. CVE-2018-14347 For Debian 8 'Jessie', these issues have...

8.8CVSS7.8AI score0.02089EPSS

Exploits2References4

Debian•added 2018/08/26 1:10 p.m.•42 views

[SECURITY] [DLA-1478-1] libextractor security update

Package : libextractor Version : 1:1.3-2+deb8u2 CVE ID : CVE-2018-14346 CVE-2018-14347 Debian Bug : 904903 904905 It was discovered that there were two vulnerabilities in libextractor, a library to obtain metadata from files of arbitrary type. A stack-based buffer overflow in unzip.c...

8.8CVSS8.5AI score0.02089EPSS

Exploits2

OSV•added 2018/08/26 12:0 a.m.•23 views

DLA-1478-1 libextractor - security update

Bulletin has no description...

8.8CVSS7.3AI score0.02089EPSS

Exploits2

OpenVAS•added 2018/08/25 12:0 a.m.•26 views

Debian: Security Advisory (DLA-1478-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.02089EPSS

Exploits2References2

ArchLinux•added 2018/07/26 12:0 a.m.•26 views

[ASA-201807-16] libextractor: denial of service

Arch Linux Security Advisory ASA-201807-16 ========================================== Severity: Medium Date : 2018-07-26 CVE-ID : CVE-2017-17440 Package : libextractor Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-541 Summary ======= The package libextractor befo...

6.5CVSS2.9AI score0.0236EPSS

Exploits1References4

CNVD•added 2018/07/18 12:0 a.m.•1 views

GNU Libextractor Buffer Overflow Vulnerability

GNU Libextractor is a set of libraries developed by the GNU Project for extracting metadata from files. A stack-based buffer overflow vulnerability exists in the 'ecreadfilefunc' function unzip.c file in GNU Libextractor versions prior to 1.7. An attacker can exploit this vulnerability to execute...

8.8CVSS8.9AI score0.02089EPSS

Exploits1References1

CNVD•added 2018/07/18 12:0 a.m.•1 views

GNU Libextractor mpeg_extractor.c File Infinite Loop Vulnerability

GNU Libextractor is a set of libraries developed by the GNU Project for extracting metadata from files. An infinite loop vulnerability exists in the 'EXTRACTORmpegextractmethod' function mpegextractor.c file in GNU Libextractor versions prior to 1.7. An attacker can exploit this vulnerability to...

6.5CVSS7.1AI score0.01718EPSS

Exploits1References1

UbuntuCve•added 2018/07/17 3:29 p.m.•24 views

CVE-2018-14347

GNU Libextractor before 1.7 contains an infinite loop vulnerability in EXTRACTORmpegextractmethod mpegextractor.c...

6.5CVSS6.9AI score0.01718EPSS

Exploits1References5

OSV•added 2018/07/17 3:29 p.m.•2 views

DEBIAN-CVE-2018-14347

GNU Libextractor before 1.7 contains an infinite loop vulnerability in EXTRACTORmpegextractmethod mpegextractor.c...

6.5CVSS7.3AI score0.01718EPSS

Exploits1References1